dolphoneman wrote:Dispite what hax said, individually, those approaches prove to be easily over come, layered they are good security measures.
AtlasDark wrote:I've heard of some interesting software that returns connection calls with the designated IP as 127.0.0.1. Imagine the confusion if someone were to assume they were breaking into their lhost. Likely bypassed easily, though.
AtlasDark wrote:Bruteforcing won't be a viable option if one has a lengthy password with mixed digits, but there exists a plethora of methods out there
myhexhax wrote:I strongly disagree. A paper door is easily broken into. 5 paper doors will help you no more.
If you'd like me to explain how I'd break into your hidden-ssid, MAC filtered, DHCP lacking wireless network, I can. None of the above are security, they never were, and they never will be.
myhexhax wrote:You can do this with ARP poisoning. Just kindly inform them that every IP they want to access points to their MAC address. (this would be immediately apparent though, as they would not be able to connect to anything..) ARP poisoning is actually fairly hard to detect, as there is no authentication, and unless you already know the MAC addresses of whatever you are connecting to, and constantly monitor your ARP table, there is no way of knowing whether or not your connections are being funneled through another computer.
noOneSpecial wrote:Hidding SSD, mac filtering, DHCP lacking was never any "protection". Those where rather tricks to make life harder for ppl that try to break in using some online tutorials - this is how i see it.
noOneSpecial wrote:ARP poisoning is hard to detect ?? arpwatch is good to detect any strange arp activity on the network (I think you know the tool anyway).It could be hard to detect on your home network if you don't have any server type of a computer running 24/7 (I think only geeks would have that...) that monitors what is going on
linkero wrote:mac filtering. just set it up to deny all except those you have on the list.
linkero wrote:also, on your router, make sure that the username is something thats not so.....guessable
Users browsing this forum: No registered users and 0 guests